There are valid criticisms to be made about LastPass but this whole paragraph is almost entirely wrong.
- You can import from CSV
- You don't have to have an Internet connection (use LastPass Pocket)
- You can store any kind of text-based data in addition to sites and related credentials
- You can search through your data
I don't know your circumstances, but my guess is you were either doing it wrong, or something wasn't working properly.

I've never tried 1Password but it looks to me like every feature you described is also in LastPass.

-It failed to import the CSV file that was exported from 1Password multiple times. It would not sort the proper field during import.
- Can you add/edit new entries while offline?
- Only text based data. The interface is very primitive. Custom fields aren't available. No more useful than a .txt document...
- No where near as useful as this kind of search:

Lastpass is useful as a basic password manager, just not as efficient or as professionally done as 1Password. It doesn't remember custom form fields when saving account logins. I prefer managing the location of the database myself, rather then relying on some 3rd party hosting site to secure the data.Edited by PoopaScoopa - 5/6/11 at 10:15am

Shudder. I'd never trust one website for my passwords. It's like putting all your valuable data on one HD. No matter how good, that HD may, and will fail.

Just get 3-4 complex passwords, remember them, then rotate them based on an algorithm. For example, if your pass was t5Mn201X1t5, you can remember that the 3rd letter will always be the current month, and every odd month it will be capitalized and even not capitalized. Then you can change one number which signifies a year, or just decrease it by one.

Any website you use on a regular basis should have a strong password, whether it's OCN or some game forum you frequent.

Just because it's different from your bank account password doesn't mean it should be any less secure

I only use 3 passwords. 2 very strong ones for things like bank and finance stuff and a weaker one for things like this forum and other crap that doesn't matter if it gets hacked.

Does it really matter if somebody hacks my myspace, OCN account etc.?

I started like this too. Then I got new bank accounts, new finance stuff, new time sheet log in at work, new pay stubs program, and things started to pile up. Half of them have weird rules that made me vary my original strong password. Then one day I found fraudulent charges on my bank account, so I redid all my strong passwords. I'm sure I forgot some of the new passwords to things I log into infrequently. Throw in all those regular sites (OCN, etc) and all of sudden I've got quite a mess of passwords.

-It failed to import the CSV file that was exported from 1Password multiple times. It would not sort the proper field during import.
- Can you add/edit new entries while offline?
- Only text based data. The interface is very primitive. Custom fields aren't available. No more useful than a .txt document...
- No where near as useful as this kind of search:

Lastpass is useful as a basic password manager, just not as efficient or as professionally done as 1Password. It doesn't remember custom form fields when saving account logins. I prefer managing the location of the database myself, rather then relying on some 3rd party hosting site to secure the data.

I had a problem when importing my passwords from KeePass, but it finally worked and worked perfectly. After that, I have yet to have a problem.

Quote:

Originally Posted by j0zef

Shudder. I'd never trust one website for my passwords. It's like putting all your valuable data on one HD. No matter how good, that HD may, and will fail.

Just get 3-4 complex passwords, remember them, then rotate them based on an algorithm. For example, if your pass was t5Mn201X1t5, you can remember that the 3rd letter will always be the current month, and every odd month it will be capitalized and even not capitalized. Then you can change one number which signifies a year, or just decrease it by one.

Any website you use on a regular basis should have a strong password, whether it's OCN or some game forum you frequent.

Just because it's different from your bank account password doesn't mean it should be any less secure

Like I said before, you should have multiple passwords. Never have just 1-2, because if someone finds out one. Then you're basically screwed.

This happened to me. I had one or two passwords that I used. Guess what? I got a keylogger on my computer and I had basically almost all of my accounts from hotmail to gmail to facebook taken from me. Boy was it a PITA to recover some of them. FB and Hotmail was easy to get back, but Gmail. Nope.

Ever since then, I won't ever have 1-2 passwords for everything.

Quote:

Originally Posted by DayoftheGreek

I started like this too. Then I got new bank accounts, new finance stuff, new time sheet log in at work, new pay stubs program, and things started to pile up. Half of them have weird rules that made me vary my original strong password. Then one day I found fraudulent charges on my bank account, so I redid all my strong passwords. I'm sure I forgot some of the new passwords to things I log into infrequently. Throw in all those regular sites (OCN, etc) and all of sudden I've got quite a mess of passwords.

Having some sort of password management would be a huge help to me.

That's what happened to me. I never really had many sites that I logged onto, until I started using more and more services online. I thought one or two passwords were good enough until I got keylogged and .... I sure was wrong.

I'd love for someone to say they have never had a problem with having one or two passwords until they get keylogged and loose a lot of their accounts and have to go through the headache of getting them back.

I know all my passwords, and have them encrypted to a local truecrypt volume.

I know that in principle, this is the same thing, but I don't like the idea of having my passwords stored (encrypted or not) on an external server that I don't have access to physically. To me, that just seems like an unnecessary risk.

I know all my passwords, and have them encrypted to a local truecrypt volume.

I know that in principle, this is the same thing, but I don't like the idea of having my passwords stored (encrypted or not) on an external server that I don't have access to physically. To me, that just seems like an unnecessary risk.

I know I know, get used to it.

It's just like trusting a company like DropBox with your files.
Just like trusting Google with your email services/documents/calendar etc.
Or putting your trust in services like Carbonite etc.

I hate the way that things are going in the terms of technology (the cloud), but I mean.... the more and more we are connected. The more and more we have to rely on these technologies since they make life a little bit easier.

Seems like it's back down again. At least, I can't access my settings page. Still getting the "Oops" message.

Really? It's working for me.

But I think you're trying to change your password.
They did state this on that page I linked to their blog.

Quote:

Currently we're not allowing users to change master passwords until our databases are completely caught up and we have resolved outstanding issues. We will update our users via the blog when it is possible to do so.

If I use lastpass to generate new, strong passwords for all my current logins, how will I access the strong passwords to log into websites when I am not at my home computer? For example, if I make my OCN password 9348039huhgf948gf98g4f3GIFG(!&, how will I be able to log into OCN at work where I cannot install lastpass?

You can access your lastpass vault by logging into the site and copy paste it, or you could do what I do and have a portable browser on a USB flash drive with it installed.